Discussion in 'malware problems & news' started by ronjor, Mar 31, 2016.
Ransomware Profile: Egregor
Ransomware Profile: NetWalker
The Week in Ransomware - March 5th 2021 - Targeting service providers
March 5, 2021
The Week in Ransomware - March 12th 2021 - Encrypting Exchange servers
March 12, 2021
Ransomware statistics for 2020: Year in summary
The Week in Ransomware - March 19th 2021 - Highest ransom ever!
March 19, 2021
This article is worth a "full read." If your PC suddenly reboots to Safe mode and you're presented with the Win logon screen; assuming you have that configured, immediately power down your PC.
FBI exposes weakness in Mamba ransomware, DiskCryptor.
The Week in Ransomware - March 26th 2021 - Attacks increase
"Ziggy Ransomware Gang Offers Refunds to Victims
The Ziggy ransomware gang announced in early February they were getting out of the cybercrime business. Now they say they’re ready to refund their victims’ money.
Anyone who paid a ransom to Ziggy just needs to shoot them an email with proof of payment calculated in Bitcoin and the computer ID. After that, the money will be returned to the Bitcoin wallet in about two weeks...
Apparently, Ziggy was scared straight in early February after law-enforcement takedowns of fellow purveyors of malware like Emotet and the NetWalker ransomware; and added that they were feeling guilty..."
"Hacked companies are paying off ransomware gangs, the criminals are reinvesting the profits in making bigger and bolder attacks, and there's no end in sight...
Gangs, many located in Russia, and using their loot to invest in AI and other tools to be more effective...
Whether the payments come via insurers or from the companies themselves, they are funding advancements for the gangs. 'They're investing in the development of automation tools' ... using machine learning to find and exploit holes in organizations' defenses. It used to take gangs weeks to seize organizations' data and demand a ransom, the analyst said. Now it can be done in hours..."
Windows XP makes ransomware gangs work harder for their money.
REvil ransomware now changes password to auto-login in Safe Mode
The Week in Ransomware - April 9th 2021 - Massive ransom demands
Dutch supermarkets run out of cheese after ransomware attack
PSA: Severe bug in Babuk ransomware decryptor leads to data loss
"Ransomware Gang Strikes The NBA Houston Rockets
Screenshots...indicate that the attackers claim to have stolen 500 gigabytes of data during the breach...
The ransomware used in the attack, Babuk, is not considered to be especially sophisticated. It is, however, still quite dangerous. Babuk has been unleashed against a variety of targets in the healthcare sector, as well as manufacturers and logistics companies...
Files stolen during the attack appear to include player contracts, non-disclosure agreements, personnel information and other financial data. In the ransom note left behind, the attackers note that the data 'could lead to legal problems and cause concern for customers' if published..."
Separate names with a comma.